Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3131663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3131663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: hM0wgQrxSd8t+EMX+xmBDmsFO7Yt+300gFeWm/F8XmY=
Subject key identifier: CF:91:AD:84:A3:96:22:2C:57:83:CF:A6:56:E3:B7:9D:06:39:AE:E4
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6FFBD4AED049401D95A2F931EC4C86FE6B69EB09
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3131663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:12 +0000
ROA not before: Mon 26 Sep 2022 07:57:12 +0000
ROA not after: Mon 25 Sep 2023 08:02:12 +0000
asID: 59282
IP address blocks: 2400:d680:11f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:fb:d4:ae:d0:49:40:1d:95:a2:f9:31:ec:4c:86:fe:6b:69:eb:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:12 2022 GMT
Not After : Sep 25 08:02:12 2023 GMT
Subject: CN=CF91AD84A396222C5783CFA656E3B79D0639AEE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:00:06:0a:67:8a:b1:f9:30:7f:25:a8:cc:ae:
9b:af:45:ba:21:4e:69:ca:5a:14:3f:5a:3b:3e:ec:
53:0a:80:23:99:66:fa:8a:67:18:a8:ee:e8:78:dd:
9d:01:e0:5e:3d:82:a1:21:62:83:bc:ab:8f:34:76:
f7:8a:6d:7f:0f:bd:a3:d3:78:c3:63:e8:bb:56:07:
89:1f:13:33:c8:c0:11:8c:38:0b:ae:3a:e6:a2:43:
9a:cb:9d:11:a1:65:d2:fa:a5:b8:65:2f:d1:c5:79:
d5:59:38:ff:8d:6c:28:e8:e4:8b:d3:4d:61:af:30:
8d:b6:7e:14:ed:9c:2d:b7:ab:a6:7e:f5:a9:9c:00:
12:16:37:c0:09:60:15:0e:e2:18:a7:bd:76:de:83:
b7:44:a7:31:63:05:80:1f:ae:20:44:ff:42:43:59:
7f:54:18:f1:45:08:5d:78:52:f6:da:ba:26:b5:83:
a8:61:db:39:c2:f7:a6:3d:73:89:59:c8:34:c7:9f:
2c:54:6a:76:98:aa:c4:37:d4:5b:5b:e4:6d:18:db:
3f:df:d8:c5:b8:11:af:ca:b7:4e:a1:1b:51:03:67:
ea:96:36:76:10:b1:af:3e:fa:ed:f0:74:11:6d:60:
c7:54:19:57:e8:a2:5d:df:46:7e:05:0a:a7:ca:61:
8a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:91:AD:84:A3:96:22:2C:57:83:CF:A6:56:E3:B7:9D:06:39:AE:E4
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3131663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:11f::/48
Signature Algorithm: sha256WithRSAEncryption
ce:06:98:b6:7e:7a:bf:c8:34:9c:45:1a:97:c9:eb:56:eb:5b:
2a:04:2e:ba:d1:14:7a:df:a4:5e:42:63:d6:e3:bb:d6:ff:09:
fe:63:71:57:73:ae:dc:da:b6:c2:15:44:4f:45:59:79:32:58:
d0:3c:b5:2b:57:3b:d3:3c:0c:c8:a0:e3:1e:a0:12:9d:ca:b2:
7f:ef:ff:37:24:19:86:e7:d6:95:f4:57:61:fe:02:c7:4a:4b:
16:ba:0b:3f:e5:44:99:22:9a:25:d4:6f:b1:c6:26:fd:d5:86:
cc:fc:b6:d1:c9:a1:eb:6f:5a:f2:67:5b:1f:1f:62:b8:4c:88:
94:68:38:ab:60:5e:4a:dc:0a:58:13:f5:43:8b:94:b1:3e:6e:
d4:35:05:0e:12:e5:2a:27:1e:12:fd:9b:15:b2:15:1f:9a:9d:
74:df:f9:c3:26:23:19:a9:97:3c:bd:b5:f8:8b:68:d1:f4:b5:
d6:b0:da:38:f1:68:c8:f4:dc:0a:40:24:32:bd:3c:ba:80:7e:
24:6d:f7:fb:b2:2c:d9:1c:50:13:0e:cc:a3:16:08:77:ba:df:
f0:ce:8c:c0:15:5a:09:db:62:c2:4e:48:dd:03:89:02:5c:6e:
2e:bb:0f:22:1c:39:b9:a9:82:44:06:f2:fd:e1:d0:3c:47:c5:
42:91:4c:e7
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUb/vUrtBJQB2Vovkx7EyG/mtp6wkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MTJaFw0yMzA5MjUwODAyMTJaMDMxMTAvBgNV
BAMTKENGOTFBRDg0QTM5NjIyMkM1NzgzQ0ZBNjU2RTNCNzlEMDYzOUFFRTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJAAYKZ4qx+TB/JajMrpuvRboh
TmnKWhQ/Wjs+7FMKgCOZZvqKZxio7uh43Z0B4F49gqEhYoO8q480dveKbX8PvaPT
eMNj6LtWB4kfEzPIwBGMOAuuOuaiQ5rLnRGhZdL6pbhlL9HFedVZOP+NbCjo5IvT
TWGvMI22fhTtnC23q6Z+9amcABIWN8AJYBUO4hinvXbeg7dEpzFjBYAfriBE/0JD
WX9UGPFFCF14Uvbauia1g6hh2znC96Y9c4lZyDTHnyxUanaYqsQ31Ftb5G0Y2z/f
2MW4Ea/Kt06hG1EDZ+qWNnYQsa8++u3wdBFtYMdUGVfool3fRn4FCqfKYYr5AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUz5GthKOWIixXg8+mVuO3nQY5ruQwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzMTY2M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
HzANBgkqhkiG9w0BAQsFAAOCAQEAzgaYtn56v8g0nEUal8nrVutbKgQuutEUet+k
XkJj1uO71v8J/mNxV3Ou3Nq2whVET0VZeTJY0Dy1K1c70zwMyKDjHqASncqyf+//
NyQZhufWlfRXYf4Cx0pLFroLP+VEmSKaJdRvscYm/dWGzPy20cmh629a8mdbHx9i
uEyIlGg4q2BeStwKWBP1Q4uUsT5u1DUFDhLlKiceEv2bFbIVH5qddN/5wyYjGamX
PL21+Ito0fS11rDaOPFoyPTcCkAkMr08uoB+JG33+7Is2RxQEw7MoxYId7rf8M6M
wBVaCdtiwk5I3QOJAlxuLrsPIhw5uamCRAby/eHQPEfFQpFM5w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org